[Webkit-unassigned] [Bug 146634] New: ASSERTION FAILED: exec->vm().controlFlowProfiler() in functionDumpBasicBlockExecutionRanges

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Jul 6 03:56:02 PDT 2015 

https://bugs.webkit.org/show_bug.cgi?id=146634

            Bug ID: 146634
           Summary: ASSERTION FAILED: exec->vm().controlFlowProfiler() in
                    functionDumpBasicBlockExecutionRanges
    Classification: Unclassified
           Product: WebKit
           Version: 528+ (Nightly build)
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: JavaScriptCore
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: rhodovan.u-szeged at partner.samsung.com
                CC: fpizlo at apple.com, saambarati1 at gmail.com
            Blocks: 116980

Created attachment 256207
  --> https://bugs.webkit.org/attachment.cgi?id=256207&action=review
Test case

Load this test with debug or release jsc. An assertion fail will happen in debug and an immediate crash in release because of the release assert:

Array(dumpBasicBlockExecutionRanges());


Backtrace:

ASSERTION FAILED: exec->vm().controlFlowProfiler()
../../Source/JavaScriptCore/jsc.cpp(1156) : JSC::EncodedJSValue functionDumpBasicBlockExecutionRanges(JSC::ExecState*)
1   0x7ffff72d46db WTFCrash
2   0x428728
3   0x7fffb0fff0a8
[New Thread 0x7fffaf7fa700 (LWP 32247)]
[New Thread 0x7fffafffb700 (LWP 32245)]
[New Thread 0x7fffb07fc700 (LWP 32244)]
[New Thread 0x7fffb0ffd700 (LWP 32243)]

Program received signal SIGSEGV, Segmentation fault.
0x00007ffff72d46e0 in WTFCrash () at ../../Source/WTF/wtf/Assertions.cpp:321
321     *(int *)(uintptr_t)0xbbadbeef = 0;
(gdb) bt
#0  0x00007ffff72d46e0 in WTFCrash () at ../../Source/WTF/wtf/Assertions.cpp:321
#1  0x0000000000428728 in functionDumpBasicBlockExecutionRanges (exec=0x7fffffffca50) at ../../Source/JavaScriptCore/jsc.cpp:1156
#2  0x00007fffb0fff0a8 in ?? ()
#3  0x00007fffffffcab0 in ?? ()
#4  0x00007ffff727e8e9 in llint_entry () from webkit/WebKitBuild/Debug/lib/libjavascriptcore_efl.so.1

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20150706/e6d2423b/attachment-0001.html>

More information about the webkit-unassigned mailing list